$ rpki-client -vvf rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft File: tWQnMiZdQL91ypSp7IEZIRwbmzI.mft (raw, json) Hash identifier: eSe34qeO2EErz0QxhdzcbRa7v78DRcAgZu0QvXfR8bk= Subject key identifier: 77:A7:65:0C:A8:CA:7C:C3:83:54:C4:DE:E1:0E:E6:58:FA:28:C7:91 Authority key identifier: B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 Certificate issuer: /CN=A916C128/serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Certificate serial: 2C17 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft Manifest number: 2B72 Signing time: Thu 24 Apr 2025 15:33:39 +0000 Manifest this update: Thu 24 Apr 2025 15:33:39 +0000 Manifest next update: Thu 01 May 2025 15:33:39 +0000 Files and hashes: 1: tWQnMiZdQL91ypSp7IEZIRwbmzI.crl (hash: jZ1t/zC3U/LWMXpQDYCfs1mdXEEWNyCERnJrpU9wA58=) 2: 13461F60ABDC11EDAE837666C4F9AE02.roa (hash: cw0PqwBBK0RHpksVvzPS62Y/XzIKpQmwvX5oJ3Ga1Uc=) 3: E0CC928CABDE11ED954F5C84C4F9AE02.roa (hash: G/2ljlZXzsuc6fmr+LrsxDu437pL1+BbINl7CakOHNg=) 4: DF821D20ABDE11ED954F5C84C4F9AE02.roa (hash: ZzwjjjV43983S9z3YZGjXBw9c3x4QvReAm0radZl0Rc=) 5: 4462F034F0EC11EB9D0B176AC4F9AE02.roa (hash: iJX8QvRtMVBhv+UXxylmDNIfKvmMzmtMROe4rMBXyWI=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 01 May 2025 15:33:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11287 (0x2c17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A916C128, serialNumber=B5642732265D40BF75CA94A9EC8119211C1B9B32 Validity Not Before: Apr 24 15:33:39 2025 GMT Not After : May 1 15:33:39 2025 GMT Subject: CN=680a59d3-61a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:b9:54:fc:31:6e:b9:42:32:ee:8a:09:ff:65: 7d:25:25:bc:e5:d3:3f:da:93:f8:dd:01:ed:2a:69: 88:f2:ec:dd:2f:82:8f:92:3b:04:c2:61:ac:35:2a: 6f:46:a1:52:82:45:f9:50:fa:69:3f:12:f7:0f:1a: a7:74:30:e8:7d:d3:ce:45:cb:9d:67:98:96:da:72: 0d:94:05:30:50:81:b8:58:5a:6a:d4:3a:0c:79:be: af:56:63:83:9a:8b:bf:6f:3f:bd:8b:e5:b6:30:1d: 53:e7:93:00:ff:39:3b:87:61:b3:99:8d:de:c7:9c: a5:41:ee:e7:91:93:03:bf:5e:d8:06:c9:87:f6:ff: 12:8a:53:74:ac:37:37:2e:1f:be:27:84:2a:b0:3c: f5:f8:25:8c:ef:00:7a:69:47:51:21:ec:53:3d:fa: f7:f3:d5:1b:4b:fe:a9:e6:60:11:7a:c3:b3:c5:90: 7a:05:b7:26:3a:3b:1a:d2:93:a6:b4:d8:72:3f:a8: 30:cc:6a:8a:f4:a7:f3:f5:1c:af:9a:e6:05:66:5b: ed:22:e2:be:74:85:23:d0:72:d3:15:d3:26:06:cc: 24:c8:d0:53:17:48:51:6f:61:79:07:79:20:2d:25: eb:dd:9b:67:83:c9:58:e8:b4:06:d2:1e:73:a7:20: c9:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A7:65:0C:A8:CA:7C:C3:83:54:C4:DE:E1:0E:E6:58:FA:28:C7:91 X509v3 Authority Key Identifier: keyid:B5:64:27:32:26:5D:40:BF:75:CA:94:A9:EC:81:19:21:1C:1B:9B:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/tWQnMiZdQL91ypSp7IEZIRwbmzI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A916C128/664A9BCAFA6D11E3B6AC23505911EA32/tWQnMiZdQL91ypSp7IEZIRwbmzI.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:f1:c2:4f:1f:31:1b:fd:88:0d:3b:9c:d8:b4:e6:22:0d:36: 92:5b:ca:2d:36:ae:e9:44:d0:19:f3:76:cf:7f:06:93:38:a7: 08:6b:82:4d:99:bd:47:34:69:ee:6e:46:3c:f2:f5:69:3a:85: ae:28:5a:3d:34:72:32:c6:3a:2e:81:00:5d:c0:22:e2:89:a2: 50:a3:48:2e:9c:d5:84:81:28:cb:41:bc:8f:37:22:21:bd:d5: 1d:89:b7:9c:e6:06:e8:1e:b6:84:86:77:6a:9d:a7:be:af:2a: 22:9d:5e:a5:9c:f3:ae:bf:ec:52:36:e8:cf:1b:ce:7e:b0:ca: 03:35:ca:0b:f0:06:1d:e3:6e:67:cb:a3:7d:63:67:0a:5f:ec: 72:10:8d:85:00:5c:8b:49:22:6a:b6:ca:17:d5:9f:13:b3:72: 15:85:a0:57:c5:7b:88:cf:52:ac:04:bc:da:51:3a:d6:64:c4: 5a:9b:10:57:ed:04:4b:4c:e0:52:c9:70:d0:e4:0a:5f:a3:f0: e5:d1:60:a5:8b:8f:3b:20:b4:eb:b9:62:70:89:81:93:7b:2c: de:0b:48:23:59:c4:d0:ad:5d:b0:01:e5:6f:6f:07:f5:c0:df: 42:f2:1e:6b:10:05:d4:71:57:de:4b:2a:f7:f2:23:fb:c2:9d: 91:e3:e6:ba -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICLBcwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx NkMxMjgxMTAvBgNVBAUTKEI1NjQyNzMyMjY1RDQwQkY3NUNBOTRBOUVDODExOTIx MUMxQjlCMzIwHhcNMjUwNDI0MTUzMzM5WhcNMjUwNTAxMTUzMzM5WjAYMRYwFAYD VQQDEw02ODBhNTlkMy02MWE0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA0LlU/DFuuUIy7ooJ/2V9JSW85dM/2pP43QHtKmmI8uzdL4KPkjsEwmGsNSpv RqFSgkX5UPppPxL3DxqndDDofdPORcudZ5iW2nINlAUwUIG4WFpq1DoMeb6vVmOD mou/bz+9i+W2MB1T55MA/zk7h2GzmY3ex5ylQe7nkZMDv17YBsmH9v8SilN0rDc3 Lh++J4QqsDz1+CWM7wB6aUdRIexTPfr389UbS/6p5mAResOzxZB6BbcmOjsa0pOm tNhyP6gwzGqK9Kfz9RyvmuYFZlvtIuK+dIUj0HLTFdMmBswkyNBTF0hRb2F5B3kg LSXr3Ztng8lY6LQG0h5zpyDJzQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFHenZQyo ynzDg1TE3uEO5lj6KMeRMB8GA1UdIwQYMBaAFLVkJzImXUC/dcqUqeyBGSEcG5sy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2QzEyOC82NjRBOUJDQUZB NkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFMOTF5cFNwN0lFWklSd2Jt ekkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3RXUW5NaVpkUUw5MXlwU3A3SUVaSVJ3Ym16SS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTE2 QzEyOC82NjRBOUJDQUZBNkQxMUUzQjZBQzIzNTA1OTExRUEzMi90V1FuTWlaZFFM OTF5cFNwN0lFWklSd2JtekkubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQBk8cJPHzEb/YgNO5zYtOYiDTaSW8otNq7pRNAZ83bPfwaTOKcIa4JN mb1HNGnubkY88vVpOoWuKFo9NHIyxjougQBdwCLiiaJQo0gunNWEgSjLQbyPNyIh vdUdibec5gboHraEhndqnae+ryoinV6lnPOuv+xSNujPG85+sMoDNcoL8AYd425n y6N9Y2cKX+xyEI2FAFyLSSJqtsoX1Z8Ts3IVhaBXxXuIz1KsBLzaUTrWZMRamxBX 7QRLTOBSyXDQ5Apfo/Dl0WCli487ILTruWJwiYGTeyzeC0gjWcTQrV2wAeVvbwf1 wN9C8h5rEAXUcVfeSyr38iP7wp2R4+a6 -----END CERTIFICATE-----Generated at Sat Apr 26 16:57:34 2025 by rpki-client